RuleTrim Extension

Danny

🔍 Suggests trimming options for broad rules, based on log data
💬 Comment to help improve this extension

SmartConsole Extension to add RuleTrim to the right global pane.

RuleTrim samples an overly permissive rule's actual traffic from the logs and proposes a tightened ruleset, reconciled against your existing objects, with a before/after risk diff.

Extension URL: https://dannyjung.de/ruletrim.json

Installation: SmartConsole > Manage & Settings > Preferences > SmartConsole Extensions

bacim

Works great, thank you!

How does one stage only parts of a command with a suggested change?

Sometimes, the staging also results in an error " 6 commands failed - see SmartConsole. Nothing was published."

Where exactly can we find the cause of such error?

Danny

Thanks for testing and for the great feedback, I'm glad it's proving useful!

Those failures were probably just "object already exists" (re-staging / leftover objects).
I implemented two fixes: staging now shows the actual API message per command, and "already exists" is treated as reused, not a failure, that should clear most of what you saw.

I also added selective staging. Hit reload and give it another go.

Filters

Sort By

Categories

RuleTrim Extension

Disclaimer: Check Point does not provide maintenance services or technical or customer support for third party content provided on this Site, including in CheckMates Toolbox. See also our Third Party Software Disclaimer.